mirror of
https://github.com/evilsocket/opensnitch.git
synced 2025-03-05 00:51:05 +01:00
OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
214e1b3c49
In some scenarios (#47) may be useful to have a set of rules handled from OpenSnitch, although you can accomplish it with other software (ufw,...). This rules will sit just above default intercetion, so if you want to allow or deny something, just place it here. These priority rules are defined in /etc/opensnitchd/fw.json, with the following format (example): { "PriorityRules": { "out": { "allow": [ ], "deny": [ "-m conntrack --ctstate INVALID", "-p tcp ! --syn -m conntrack --ctstate NEW" ] } } } The structure must exist even if you haven't defined any rule, for example: { "PriorityRules": { "out": { "allow": [ ], "deny": [ ] } } } |
||
|---|---|---|
| .github | ||
| daemon | ||
| debian | ||
| proto | ||
| screenshots | ||
| ui | ||
| .gitignore | ||
| LICENSE | ||
| make_ads_rules.py | ||
| Makefile | ||
| README.md | ||
| release.sh | ||
OpenSnitch is a GNU/Linux application firewall.
Installation and configuration
Please, refer to documentation for detailed information.
Credits
OpenSnitch was originally created by Simone Margaritelli (evilsocket), 2017-2019.
Many others have also contributed over the time, see the list
Disclaimer
THIS SOFTWARE IS A WORK IN PROGRESS, DO NOT EXPECT IT TO BE BUG FREE AND DO NOT RELY ON IT FOR ANY TYPE OF SECURITY.